5a1d72c573eda4f170d6e2668da3f193c5e1b47cabffff7d9f1cd69513830ad3 | Triage

Sharing

General

Target

5a1d72c573eda4f170d6e2668da3f193c5e1b47cabffff7d9f1cd69513830ad3
Size

116KB
Sample

221207-c74lhabe4t
MD5

7dcb185f16ac51b190bf4a43319518f4
SHA1

17c0753b6c1aa66ea95e0971297469ac75047816
SHA256

5a1d72c573eda4f170d6e2668da3f193c5e1b47cabffff7d9f1cd69513830ad3
SHA512

1c5486bad4c7320db21571223bd0a1820f2fd4793941a6d06126e11e5bde64c89c522143c1c45af71a2203322cae7bfaf6d234ef6267df90a939e2376dba672a
SSDEEP

1536:NzRLDE51/trLv5meXe5QvcPrulffEwZWsy1lZZNCsyW02MAh:MXX5meIrulffEwZWs/slt

Score

7^/10

Malware Config

Targets

- Target
  
  5a1d72c573eda4f170d6e2668da3f193c5e1b47cabffff7d9f1cd69513830ad3
- Size
  
  116KB
- MD5
  
  7dcb185f16ac51b190bf4a43319518f4
- SHA1
  
  17c0753b6c1aa66ea95e0971297469ac75047816
- SHA256
  
  5a1d72c573eda4f170d6e2668da3f193c5e1b47cabffff7d9f1cd69513830ad3
- SHA512
  
  1c5486bad4c7320db21571223bd0a1820f2fd4793941a6d06126e11e5bde64c89c522143c1c45af71a2203322cae7bfaf6d234ef6267df90a939e2376dba672a
- SSDEEP
  
  1536:NzRLDE51/trLv5meXe5QvcPrulffEwZWsy1lZZNCsyW02MAh:MXX5meIrulffEwZWs/slt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Maps connected drives based on registry
  Disk information is often read in order to detect sandboxing environments.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Peripheral Device Discovery

Process Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2